Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

A3300R — Vulnerabilities & Security Advisories 17

All 17 CVE vulnerabilities found in A3300R, with AI-generated Chinese analysis, references, and POCs.

Vendor: TOTOLINK

CVE IDTitleCVSSSeverityPublished
CVE-2026-5679 Totolink A3300R cstecgi.cgi vsetTr069Cfg os command injection CWE-78 5.5 Medium2026-04-06
CVE-2026-5178 Totolink A3300R cstecgi.cgi setIptvCfg command injection CWE-77 6.3 Medium2026-03-31
CVE-2026-5177 Totolink A3300R cstecgi.cgi setWiFiBasicCfg command injection CWE-77 6.3 Medium2026-03-31
CVE-2026-5176 Totolink A3300R cstecgi.cgi setSyslogCfg command injection CWE-77 7.3 High2026-03-31
CVE-2026-5105 Totolink A3300R Parameter cstecgi.cgi setVpnPassCfg command injection CWE-77 6.3 Medium2026-03-30
CVE-2026-5104 Totolink A3300R cstecgi.cgi setStaticRoute command injection CWE-77 6.3 Medium2026-03-30
CVE-2026-5103 Totolink A3300R cstecgi.cgi setUPnPCfg command injection CWE-77 6.3 Medium2026-03-30
CVE-2026-5102 Totolink A3300R Parameter cstecgi.cgi setSmartQosCfg command injection CWE-77 6.3 Medium2026-03-30
CVE-2026-5101 Totolink A3300R Parameter cstecgi.cgi setLanCfg command injection CWE-77 6.3 Medium2026-03-29
CVE-2025-12260 TOTOLINK A3300R POST Parameter cstecgi.cgi setSyslogCfg stack-based overflow CWE-121 8.8 High2025-10-27
CVE-2025-12259 TOTOLINK A3300R POST Parameter cstecgi.cgi setScheduleCfg stack-based overflow CWE-121 8.8 High2025-10-27
CVE-2025-12258 TOTOLINK A3300R POST Parameter cstecgi.cg setOpModeCfg stack-based overflow CWE-121 8.8 High2025-10-27
CVE-2025-12241 TOTOLINK A3300R POST Parameter cstecgi.cgi setLanguageCfg stack-based overflow CWE-121 8.8 High2025-10-27
CVE-2025-12240 TOTOLINK A3300R cstecgi.cgi setDmzCfg buffer overflow CWE-120 8.8 High2025-10-27
CVE-2025-12239 TOTOLINK A3300R cstecgi.cgi setDdnsCfg buffer overflow CWE-120 8.8 High2025-10-27
CVE-2024-7331 TOTOLINK A3300R cstecgi.cgi UploadCustomModule buffer overflow CWE-120 8.8 High2024-08-01
CVE-2024-7155 TOTOLINK A3300R shadow.sample hard-coded password CWE-259 2.5 Low2024-07-28

All 17 known CVE vulnerabilities affecting A3300R with full Chinese analysis, references, and POCs where available.